Security Journey Blog

Application Security DevSecOps AI/LLM

Jul 10, 2025

Code or be Conquered: Preparing Developers for Cyber Threats in the Age of AI

The following article summarizes a recent SC webcast discussion between Host Adrian Sanabria and Dustin Lehr, Director of Application Security Advocacy at Security Journey. They delve into what it...

Read More - Code or be Conquered: Preparing Developers for Cyber Threats in the Age of AI

Application Security AI/LLM

Mar 26, 2025

AI Security: Insights from the Security Journey Content Team

The rise of AI brings incredible opportunities, but also unprecedented security challenges. At Security Journey, we believe security is not a mere checklist, but an ongoing journey.  

Read More - AI Security: Insights from the Security Journey Content Team

Application Security Security Culture

Mar 24, 2025

How to Evaluate Developer Engagement and Learning in Secure Code Training

Security is a critical aspect of software development, and secure coding practices help mitigate vulnerabilities before they become costly breaches. However, simply implementing a secure code...

Read More - How to Evaluate Developer Engagement and Learning in Secure Code Training

Secure Coding Training Application Security

Mar 12, 2025

Developer-Tailored Secure Code Training: A New Approach from Security Journey

Security training for developers has traditionally been a one-size-fits-all experience—generic, compliance-driven, and often irrelevant to a developer’s actual work. At Security Journey, we recognize...

Read More - Developer-Tailored Secure Code Training: A New Approach from Security Journey

Secure Coding Training Application Security

Feb 25, 2025

Leveraging CWEs in Secure Code Training

We are currently in an application security dilemma that costs organizations millions of dollars annually. 

Read More - Leveraging CWEs in Secure Code Training

Application Security

Feb 4, 2025

Understanding Denial of Service (DoS) Attacks: A Comprehensive Guide

We'll explore the reasons for PCI-DSS's existence, the consequences of non-compliance, and how adhering to these standards benefits both your business and your customers. 

Read More - Understanding Denial of Service (DoS) Attacks: A Comprehensive Guide

Application Security AI/LLM

Jan 22, 2025

AI and Education: Empowering Developers to Preserve Human Agency in a World of Automation

January 24th marks the International Day of Education, and this year’s theme, "AI and Education: Preserving Human Agency in a World of Automation," couldn’t be more relevant. As AI continues to...

Read More - AI and Education: Empowering Developers to Preserve Human Agency in a World of Automation

Application Security AI/LLM

Dec 19, 2024

5 Types of Data You Should NEVER Share with AI

Large language models (LLMs) like ChatGPT are powerful tools, but it's crucial to remember that data privacy is paramount. 

Read More - 5 Types of Data You Should NEVER Share with AI

Application Security

Dec 13, 2024

Cracking the Code: Unveiling the Importance of CWEs in Cybersecurity

In this post, we'll delve into the world of CWEs, explaining what they are, why they're essential, and how they can be used to build more secure software.

Read More - Cracking the Code: Unveiling the Importance of CWEs in Cybersecurity

Application Security

Nov 25, 2024

The Hidden Cost of Technical Debt: How Legacy Code Creates Security Blindspots

Make 2025 the year you confront your legacy code security issues. Secure coding training can empower your team to tackle vulnerabilities, leading to your organization's safer and more resilient future. 

Read More - The Hidden Cost of Technical Debt: How Legacy Code Creates Security Blindspots

Application Security AI/LLM

Nov 15, 2024

How to Use AI as a Developer [with examples]

Are you ready to harness the power of AI to transform your development workflow? Artificial intelligence is no longer futuristic; it's revolutionizing software development today.  

Read More - How to Use AI as a Developer [with examples]

Application Security AI/LLM

Nov 4, 2024

AI/LLM Secure Coding Training: Don't Let Innovation Outpace Security

Developers need to be aware of this risk and treat user-supplied input that interacts with the AI/LLM with the same level of scrutiny as any other external input.

Read More - AI/LLM Secure Coding Training: Don't Let Innovation Outpace Security